In its annual security report out today, Cisco warns the risk of cyber attack and the vulnerability of systems is at its highest level since the turn of the century.

The report says simple attacks of the past have given way to sophisticated cybercrime operations and that hackers are now threatening critical systems using malware described by Cisco as "weapons grade".

Industries with historically high malware encounter rates include pharmaceuticals, chemicals and electronics manufacturing.

However, Cisco says that in 2013 there has been a "remarkable growth" in malware encounters for the agriculture and mining sectors.

"Simple attacks that caused containable damage have given way to organised cybercrime operations that are sophisticated, well-funded, and capable of significant economic and reputational damage to public and private sector victims," the report warns.

"Cybercriminals have learned that harnessing the power of internet infrastructure yields far more benefits than simply gaining access to individual computers or devices.

"These infrastructure-scale attacks seek to gain access to strategically positioned web hosting servers, name servers and data centres with the goal of proliferating attacks across legions of individual assets served by these resources. By targeting internet infrastructure, attackers undermine trust in everything connected to or enabled by it."

The Cisco report says overall threats and vulnerabilities are now at their highest level since May 2000.

Cisco says a worldwide shortage of nearly a million skilled security professionals is limiting the ability of organisations to combat the cyber threat.

"The sophistication of the technology and tactics used by online criminals - and their non-stop attempts to breach networks and steal data - have outpaced the ability of IT and security professionals to address these threats," the report observed.

"Most organisations do not have the people or the systems to continuously monitor extended networks and detect infiltrations, and then apply protections, in a timely and effective manner."

According to Cisco, attacker methods include the "socially engineered" theft of passwords and credentials and the "exploitation of trust required for economic transactions, government services and social interactions.

Cisco is also warning that devices using the Android operating system are particularly at risk, with 99 per cent of all mobile malware targeting Android devices.

Cisco says the Andr/Qdplugin-A malware is the most frequently encountered cybercriminal tool which is often distributed through legitimate mobile apps.